3 matches found
Astra Linux – Vulnerability in mbedtls
Mbed TLS versions prior to 3.6.4 allow a use-after-free in certain situations of applications developed in accordance with the documentation. The function mbedtlsx509stringtonames takes a head argument, which is documented as an output argument. The documentation does not indicate that the functi...
The vulnerability of the mbedtls_x509_string_to_names function in Mbed TLS software allows a attacker to execute arbitrary code.
The vulnerability of the mbedtlsx509stringtonames function in Mbed TLS is related to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
SUSE CVE-2025-47917
Mbed TLS before 3.6.4 allows a use-after-free in certain situations of applications that are developed in accordance with the documentation. The function mbedtlsx509stringtonames takes a head argument that is documented as an output argument. The documentation does not suggest that the function...